Infrastructure Security Engineer II

We don’t think about job roles in a traditional way. We are anti-silo. Anti-career stagnation. Anti-conventional. 

Beyond ONE is a digital services provider radically reshaping the personalised digital ecosystems of consumers in high growth markets around the world. We’re building a digital services aggregator platform, with a strong telco foundation, and a profitable growth strategy that empowers users to drive their own experience—subscribe once, source from many, and only pay for what you actually use. 

Since being founded in 2021, we’ve acquired Virgin Mobile MEA, Friendi Mobile MEA and Virgin Mobile LATAM (with 6.5 million subscribers) and 1600 dedicated  colleagues across Chile, Colombia, KSA, Kuwait, Mexico, Oman and UAE. 

To disrupt for good takes a rebellious spirit, a questioning mind and a warm heart. We really care about how to get things done and not who manages who. We benefit from our diversity, and together, we disrupt the way we and others thinkin about our lives for good.  

Do you want to exchange ideas, learn from each other and leave your mark on our journey? This is the place for you. 

Role Purpose

 Why this role matters?

As Infrastructure Security Engineer II, you will play a critical role in safeguarding the integrity, confidentiality, and availability of our hybrid infrastructure—spanning both on-premise data centers and AWS cloud environments. Your contributions will help shape Information Security department, and ultimately the way we disrupt the market.

Why this is for you?

If you're keen on solving hybrid infrastructure security problems in a fast-paced energetic environment, hit us up. We're looking for someone ready to tackle this challenge head-on and make an impact from day one.

Key Responsibilities

In this role, you will:

• Design, implement, and manage security controls and solutions for both on-premise and AWS environments, including but not limited to network security, endpoint protection, identity and access management (IAM), and data protection.
• Conduct regular infrastructure security assessments and threat modeling to identify and remediate risks, vulnerabilities, and misconfigurations.
• Collaborate with network engineering, DevOps, and cloud teams to ensure security is embedded into infrastructure design and deployment pipelines.
• Manage incident response efforts related to infrastructure security breaches or anomalies, and perform root cause analysis to strengthen defenses.
• Monitor and manage security tools, such as SIEM, IDS/IPS, endpoint protection platforms, and cloud-native security services (e.g., AWS GuardDuty, Security Hub).
• Stay abreast of the latest threats, vulnerabilities, and regulatory requirements relevant to the telecommunications and MVNO space.
• Support audits and compliance initiatives (e.g., ISO 27001, KSA CRF, NIST) through documentation, reporting, and control validation.
• Contribute to the development of security policies, standards, and procedures aligned with industry frameworks and business needs.

Qualifications & Attributes

We’re seeking someone who embodies the following:

● Education: Bachelor's degree in Computer Science, Information Security, Telecommunications, or a related field. Relevant industry certifications preferred (e.g., CISSP, AWS Certified Security – Specialty, CISM, GIAC certifications).

● Experience: 5+ years of hands-on experience in infrastructure security engineering, with a focus on hybrid (on-premise + cloud) environments. Proven experience in securing digital/telecommunications networks or similar large-scale, high-availability environments is highly desirable.

● Technical Skills:

○ Strong expertise in network security (firewalls, VPNs, IPS/IDS, network segmentation) for both on-premise and cloud.

○ In-depth experience with AWS security services (IAM, KMS, Security Hub, GuardDuty, Inspector, VPC security).

○ Solid understanding of Linux and Windows system hardening.

○ Familiarity with automation tools (e.g., Terraform, Ansible) for security configuration management.

○ Proficiency in SIEM platforms (e.g., Splunk, ELK, or equivalent) and incident detection/response workflows.

○ Knowledge of encryption technologies, PKI, and secure communications protocols.

○ Experience working with container security (e.g., Kubernetes, EKS, or Docker) is a plus.

○ Scripting skills (e.g., Python, Bash) for automating security tasks.

● Unique Attributes:

○ Ability to thrive and deliver high-quality results in a fast-paced, high-pressure environment typical of the telco and MVNO industry.

○ Strong analytical and problem-solving skills with a proactive and hands-on approach.

○ Excellent communication skills with the ability to translate technical security risks into business impacts for non-technical stakeholders.

○ A collaborative team player who can influence cross-functional teams to prioritize and implement security best practices.

What we offer:

• Rapid learning opportunities - we enable learning through flexible career paths, exposure to challenging & meaningful work that will help build and strengthen your expertise.
• Hybrid work environment - flexibility to work from home 2 days a week.
• Healthcare and other local benefits offered in market.

By submitting your application, you acknowledge and consent to the use of Greenhouse & BrightHire during the recruitment process. This may include the storage and processing of your data on servers located outside your country of residence. For further information, please contact us at dataprivacy@beyond.one.